Introducing Tenki's code reviewer: deep, context-aware reviews that actually find bugs.Try it for Free
Back to Blog

CI/CD

Continuous integration and continuous delivery workflows, pipelines, and tooling.

Illustration of a compromised security scanner, showing how a trusted code scanning tool can be exploited to introduce vulnerabilities, bypass detection, and impact software supply chain security.
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedApr 2026

When Your Security Scanner Gets Compromised

Security|Supply Chain Security|+4
Illustration of GitHub Actions workflow lockfiles, showing how dependency locking improves CI/CD security, ensures reproducible builds, and prevents unauthorized changes.
Eddie Wang
Eddie WangApr 2026

GitHub Actions Workflow Lockfiles Are Coming

GitHub Actions Security|Supply Chain Security|+1
GitHub Actions caching workflow showing optimization of npm installs, Docker layer caching, and Turborepo build performance in continuous integration pipelines.
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedApr 2026

GitHub Actions Caching: npm, Docker, and Turborepo

GitHub Actions|GitHub Actions Cache|+5
Linting GitHub Actions workflows with actionlint to detect syntax errors and improve CI pipelines
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedMar 2026

Lint Your GitHub Actions Workflows with actionlint

actionlint|OpenSSF Scorecard|+2
Guide on auditing changes when ubuntu-latest updates to Ubuntu 24.04 in CI environments
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedMar 2026

ubuntu-latest is Ubuntu 24.04: What to Audit

GitHub Actions|CI/CD|+3
Explanation of GitHub agentic workflows and how autonomous agents automate development tasks
Marina Rivosecchi
Marina RivosecchiMar 2026

GitHub Agentic Workflows Explained

Guide to optimizing monorepo CI with GitHub Actions using selective builds for efficiency
Eddie Wang
Eddie WangMar 2026

Monorepo CI with GitHub Actions: Selective Builds Done Right

GitHub Actions|CI/CD|+4
Visual guide on GitHub Actions cost optimization, showing strategies to reduce billable CI/CD minutes by 40–70%.
Eddie Wang
Eddie WangMar 2026

GitHub Actions Cost Optimization: Cut Your Billable Minutes by 40–70%

GitHub Actions|Cost Optimization|+1
Overview of GitHub Actions artifact attestations, SLSA provenance, and supply chain security defaults
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedFeb 2026

GitHub Actions Artifact Attestations: SLSA Provenance and Supply Chain Defaults

GitHub Actions|Security|+3
Diagram showing GitHub Actions using OIDC with custom properties to enable attribute-based access control (ABAC) for secure cloud resource access.
Eddie Wang
Eddie WangFeb 2026

GitHub Merge Queue in 2026: How It Works & Handling Flaky Required Status Checks

GitHub Actions|CI/CD|+1
Guide on securing GitHub Actions by locking down GITHUB_TOKEN permissions
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedFeb 2026

GitHub Actions Permissions: Lock Down GITHUB_TOKEN

GitHub Actions Security|GITHUB_TOKEN|+1
Guide to creating custom GitHub Actions using JavaScript, Docker, and composite actions
Eddie Wang
Eddie WangFeb 2026

Custom GitHub Actions: JavaScript, Docker, and Composite

GitHub Actions|CI/CD|+2
Guide showing how to build and push Docker images using GitHub Actions workflows
Eddie Wang
Eddie WangFeb 2026

Build and Push Docker Images with GitHub Actions

GitHub Actions|CI/CD|+6
Guide showing how to automate software releases using GitHub Actions
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedFeb 2026

Release Automation with GitHub Actions

GitHub Actions|CI/CD|+4
Comparison of reusable workflows and composite actions in GitHub Actions to help choose the right approach
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedFeb 2026

Reusable Workflows vs. Composite Actions: Pick Right

GitHub Actions|CI/CD|+4
Guide on using GitHub Actions to build evaluation pipelines for large language models (LLMs)
Eddie Wang
Eddie WangFeb 2026

GitHub Actions for LLM Eval Pipelines

GitHub Actions|CI/CD|+3
Guide on testing GitHub Actions workflows locally using the tool act
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedJan 2026

Test GitHub Actions Locally with act

GitHub Actions|CI/CD|+3
Diagram showing GitHub Actions using OIDC with custom properties to enable attribute-based access control (ABAC) for secure cloud resource access.
Eddie Wang
Eddie WangJan 2026

GitHub Actions OIDC Custom Properties: ABAC Cloud Access

OIDC|Security|+2
Deep dive illustration of GitHub Actions cache strategies, showing workflow caching techniques to speed up CI/CD pipelines.
Eddie Wang
Eddie WangJan 2026

GitHub Actions Cache Strategy Deep Dive

GitHub Actions|Caching|+4
Diagram of OpenTelemetry integration for GitHub Actions, showing traces exported via OTLP and visualized as pipeline flamegraphs for performance monitoring and workflow observability.
Eddie Wang
Eddie WangDec 2025

OpenTelemetry for GitHub Actions: Traces, OTLP, and Pipeline Flamegraphs

OpenTelemetry|Observability|+3
From Provision to Shutdown The Lifecycle of a Tenki Runner
Marina Rivosecchi
Marina RivosecchiAug 2025

From Provision to Shutdown: The Lifecycle of a Tenki Runner

Tenki|GitHub Actions|+2
illustration explaining GitHub Actions runners, showing how they execute CI/CD workflows for automation in software development.
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedAug 2025

What Are GitHub Actions Runners? A Complete Beginner’s Guide to CI/CD Workflows

GitHub Actions|CI/CD|+2
Guide showing how to migrate from GitHub-hosted runners to self-hosted runners to reduce cloud costs in three minutes.
Hayssem Vazquez-Elsayed
Hayssem Vazquez-ElsayedAug 2025

How to Migrate from GitHub-hosted Runners and Save on Cloud Costs in 3 Minutes

Tenki|Migration|+3

GET TENKI

Smarter reviews. Faster builds. Start for Free in less than 2 min.

Book demo for Tenki CloudBook a demo with Marina